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BACKGROUND 

1. Field 

5 This invention relates to microprocessor. In particular, the invention 

relates to microprocessor cryptography. 

2. General Background 

Advances in microprocessor and communication technologies have 
1 0 opened up many opportunities for applications that go beyond the traditional 
ways of doing business. Electronic commerce (E-commerce) and business-to- 
business (B2B) transactions are now becoming popular, reaching the global 
markets at a fast rate. Unfortunately, while modern microprocessor systems 
provide users convenient and efficient methods of doing business, 
15 communicating and transacting, they are also vulnerable to unscrupulous 
attacks. Examples of these attacks include virus, intrusion, security breach, 
and tampering. Computer security, therefore, is becoming more and more 
important to protect the integrity of the computer systems and increase the trust 
of users. 

20 Threats caused by unscrupulous attacks may be in a number of forms 

such as passive wiretapping (eavesdropping), e.g., interception of messages, 
usually without detection, and active wiretapping (tampering), e.g., deliberate 
modification made to the message stream, which threatens authenticity. An 
invasive remote-launched attack by attackers may disrupt the normal operation 
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of a system connected to thousands or even millions of users. A virus program 
may corrupt code and/or data of a single-user platform. 

Various efforts in the computer industry have been directed at improving 
security in computer processing environments. These efforts have been 
5 focused on various issues concerning data security including privacy, 
authentication, integrity, and non-repudiation, etc. Security solutions have 
been developed by various entities and companies in dealing with these basic 
security issues. In cases where software or other digital content is licensed to 
be used only on a specific system (e.g., platform) it is common to have the 
10 platform sign a unique message supplied by the content provider to "prove" that 
the platform identity matches the platform identity authorized to use the digital 
content. In cases where a platform originates a message or data it is common 
to have the platform sign the message or data to prove that the message or 
data originated from that platform. 

15 The digital signature in these cases is produced using a private key. 

Ideally, the private key is kept secretly inside a platform (i.e., first platform) so 
that unauthorized users (e.g., intruders, attackers, forgers) cannot find out what 
it is. Unfortunately, signatures can be forged because if the authorized users 
can write code to use the private key, then the unauthorized users can also 

20 write code to read the private key and install it on another platform, allowing 
that other platform to impersonate the identity of the first platform. 

Therefore, there is a need to have a technique to sign data with a high 
degree of resistance to attack that provides protection against a second 
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platform impersonating a first platform even if the attacker has access to the 
first platform. 

BRIEF DESCRIPTION OF THE DRAWINGS 

5 The features and advantages of the present invention will become 

apparent from the following detailed description of the present invention in 
which: 

Figure 1A is a diagram illustrating a block diagram of a protected 
10 authentication environment according to one embodiment of the invention 

Figure 1B is a diagram illustrating a platform in which one embodiment 
of the invention can be practiced. 

15 Figure 2 is a diagram illustrating a block diagram of the digital signature 

system shown in Figure 1A according to one embodiment of the invention. 

Figure 3 is a diagram illustrating a block diagram of the protected 
authentication digital generator shown in Figure 2 according to one 
20 embodiment of the invention. 

Figure 4 is a diagram illustrating a block diagram of the authentication 
identifier generator shown in Figure 1A according to one embodiment of the 
invention. 

25 
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Figure 5 is a flowchart illustrating a process to generate a digital 
signature according to one embodiment of the invention. 

Figure 6 is a flowchart illustrating the process shown in Block 540 of 
5 Figure 5 according to one embodiment of the invention. 

Figure 7 is a flowchart illustrating a process to generate an 
authentication identifier according to one embodiment of the invention. 

DETAILED DESCRIPTION 

10 In the following description, for purposes of explanation, numerous 

details are set forth in order to provide a thorough understanding of the present 
invention. However, it will be apparent to one skilled in the art that these 
specific details are not required in order to practice the present invention. In 
other instances, well-known electrical structures and circuits are shown in block 

15 diagram form in order not to obscure the present invention. 

In the following description, terminology is used to discuss certain 
features of the present invention. For example, a "platform" includes hardware 
equipment and/or software that process information. Examples of a platform 
include, but are not limited or restricted to a computer (e.g., a desktop, a laptop, 

20 a hand-held, a server, a workstation, etc.), desktop office equipment (e.g., 
printer, scanner, a facsimile machine, etc.), a wireless telephone handset, a 
television set-top box, and the like. The term "information" is defined as one or 
more of data, address, and/or control. 

With respect to cryptographic functionality, a key is information used by 

25 a cryptographic function to perform a particular operation such as encryption or 
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decryption. A "cryptographic function" is a software routine or a collective 
process for conducting cryptographic operations such as symmetric functions 
(e.g., Data Encryption Standard "DES"), asymmetric functions (e.g., Rivest, 
Shamir, and Adleman "RSA" based functions), or a function for digitally signing 
5 information (e.g., Digital Signature Algorithm "DSA" or a RSA-based signing 
functions). A "digital signature" is generally defined as data signal with a 
private key of the signatory. Normally, a digital signature is used to 
authenticate or verify data integrity in order to ensure that the data has not 
been illicitly modified after being digitally signed. The data may be provided in 

10 its entirety, or as a hash value produced by a hashing function. In addition, an 
"authentication vendor" is any person or entity in a position of trust to guarantee 
or sponsor certain information (e.g., a bank, government entity, trade 
association, original equipment manufacturer, etc.). 

Figure 1A is a diagram illustrating an authentication system 100A 

15 according to one embodiment of the present invention. The authentication 
system 100A includes a first platform 100B, a second platform 100C, a digital 
signature system 120, an authentication identifier generator 130, and an 
authentication signature verifier 104. 

The first platform 1 00B produces an authentication identifier 225 along 

20 with a corresponding public key 103. The public key 103 is a conventional 
asymmetric public key as is well known in the art. The authentication identifier 
225 is similar to a corresponding private key, except that it has been altered so 
that it can only be used on the specific second platform 100C for generating a 
digital signature 105. 
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The second platform 100C is a platform on which the digital signature 
105 and data 102 are generated. The second platform 100C is typically used 
or accessed by a user who desires to generate the digital signature 105 to 
prove the origin and integrity of data 102. The data 102 may be numbers, a 
5 text file, a program, a picture file, an audio file, a media file, an electronic mail 
(e-mail), a hyper-text markup language (HTML) page, document, etc. 

In one common usage, the data 102 is a unique message supplied by a 
provider of digital content or software licensed only for use on the specific 
second platform 100C. The second platform 100C generates the digital 
10 signature 105 of the supplied data to prove the identity of the platform to a 
digital content or software provider. 

The digital signature 105 can be verified using the authentication 
signature verifier 104. Verification is performed using the public key 103 
according to public-key based digital signature verification techniques that are 
15 well known in the art. The verification of the digital signature 105 may be 
performed inside or outside the second platform 100C. 

The authentication identifier generator 130 generates both (i) the 
authentication identifier 225 to be used by the protected authentication 
signature generator 230 and (ii) a corresponding public key 103 to be used by 
20 the authentication signature verifier 104. The authentication identifier generator 
130 is external to the second platform 100C and is provided by an 
authentication vendor. The generation of the authentication identifier 225 is 
shown in Figure 4. The second platform 100C receives the authentication 
identifier 225 and uses the digital signature system 120 to generate the digital 
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signature 105. The digital signature system 120 may be implemented inside or 
outside of the second platform 100C. 

The authentication identifier generator 130 and the protected 
authentication signature generator 230 may be implemented by hardware, 
5 software, or any combination thereof. 

Figure 1B is a diagram illustrating a platform in which one embodiment 
of the present invention can be practiced. The first platform 100B or the 
second platform 100C includes a processor 101 f a host bus 1 1 1 , a host bridge 
chipset 121, a system memory 132, a primary peripheral component 
10 interconnect (PCI) bus 151, PCI slots 1611 to 161k ("K" > 2). a PCI-to-industry 
standard architecture (ISA) bridge 172, mass storage device 173, Input/Output 
(I/O) ports 171, an ISA bus 182, and ISA slots 1 81 \ to 181m ("M"> 2)- 

The processor 101 represents a processing unit of any type of 
architecture. For example, the processor 101 may be implemented as a 
15 microcontroller, a digital signal processor, a state machine, or a central 
processing unit (CPU). The CPU may be implemented with a variety of 
architecture types such as complex instruction set computers (CISC), reduced 
instruction set computers (RISC), very long instruction word (VLIW), or hybrid 
architecture. 

20 The host bridge chipset 121 includes a number of interface circuits to 

allow the processor 101 access to the system memory 132 and the primary PCI 
bus 151 . The system memory 132 represents one or more mechanisms for 
storing information. For example, the system memory 132 may include non- 
volatile or volatile memories. Examples of these memories include flash 
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memory, read only memory (ROM), or random access memory (RAM). In the 
platform 100B, the system memory 132 may contain a program that can 
implement the authentication identifier generator 130 and other programs or 
data. In the platform 100C, the system memory may contain a program that 
5 can implement a protected authentication signature generator program 230 and 
other programs and data. The program in the platform may be software 
program or firmware program. Of course, the system memory 132 preferably 
contains additional software (not shown), which is not necessary to 
understanding the invention. 

10 The PCI slots 161 1 to 161k provide interfaces to PCI devices. 

Examples of PCI devices include the network interface and the media interface. 

The network interface connects to communication channel such as the Internet. 

The Internet provides access to on-line service providers, Web browsers, and 

other network channels. The media interface provides access to audio and 
15 video devices. 

The PCI-to-ISA bridge 172 provides access to the ISA bus 182, mass 
storage devices 173, and input/output (I/O) ports 171 . The I/O ports 171 
provides interface to I/O devices (not shown). The I/O devices may include any 
I/O devices to perform I/O functions such as a media card (e.g., audio, video, 
20 graphics), a network card and the like. The mass storage device 173 includes 
a machine readable media such as a compact disk (CD) ROM, a digital video 
disk (DVD), ZIP™ disk, floppy diskette, hard drive, and the like. The mass 
storage device 173 stores archive information such as code, programs, files, 
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and operating systems. The mass storage device 173 provides a mechanism 
to read the machine-readable media. 

When implemented in software, the elements of the present invention 
are the code segments to perform the necessary tasks. The program or code 
5 segments can be stored in a processor readable medium or transmitted by a 
computer data signal embodied in a carrier wave, or a signal modulated by a 
carrier, over a transmission medium. The "processor readable medium" may 
include any medium that can store or transfer information. Examples of the 
processor readable medium include an electronic circuit, a semiconductor 

10 memory device, a ROM, a flash memory, an erasable programmable ROM 
(EPROM), a floppy diskette, a CD-ROM, an optical disk, a hard disk, a fiber 
optical medium, a radio frequency (RF) link, etc. The computer data signal 
may include any signal that can propagate over a transmission medium such 
as electronic network channels, optical fibers, air, electromagnetic, RF links, 

15 etc. The code segments may be downloaded via computer networks such as 
the Internet, an Intranet, etc. The ISA bus 182 has a number of ISA slots 181 <i 
to 181 M to interface to ISA devices. Examples of ISA devices include data 
entry devices (e.g., keyboard, mouse, trackball, pointing device), printers, etc. 
The protected authentication signature generator 230 may be stored in 

20 ROM to guard against attacks that forge a digital signature of a different 
platform. The protected authentication signature generator 230 may be 
retrieved from a processor readable medium or transmission medium. In this 
case, it is common to use a digital signature of the program or code segments 
to guard against alteration attacks. Such digital signature techniques are well 

25 known in the art. 
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Figure 2 is a diagram illustrating a block diagram of the digital signature 
system 120 according to one embodiment of the invention. The digital 
signature system 120 includes a first storage 210, a second storage 220, and a 
protected authentication signature generator 230. The protected authentication 
5 signature generator 230 signs the data 102 to generate digital signature 105 
using the unique platform identifier 215 and the authentication identifier 225. 

The first storage 210 guards against the unique platform identifier 215 
being easily altered. In one embodiment, the unique platform identifier 215 is a 
platform identifier (ID) "Universal Unique Identifier" (UUID) or "Globally Unique 
10 Identifier" (GUID) retrieved from a System Management Basic Input/Output 
System (SMBIOS) table. Techniques for generating such unique identifiers, 
storing them in an SMBIOS table, and guarding them against alteration are well 
known in the industry. 

In another embodiment, the unique platform identifier 215 is a unique 
15 processor serial number retrieved using a special processor instruction. The 
processor guards against its internal serial number being altered. Any digital 
platform identifier can be used as long as it is unique and guarded against 
alteration. 

The second storage 220 stores the authentication identifier 225. Unique 
20 to the second platform 100C, the authentication identifier 225 is provided by the 
authentication vendor and is installed to the platform 100C (shown in Figure 4). 
Since the authentication identifier 225 may be dynamically installed in the 
platform 100C after the platform is manufactured, it is likely that the second 
storage 220 is not guarded or cannot be guarded against being altered. 
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However, the present invention protects against the authentication identifier 
225 being used to generate any valid digital signatures if it has been altered. 

The protected authentication signature generator 230 is used to prove 
the originator (e.g., platform) and integrity of a message. The protected 
5 authentication signature generator 230 represents a black box or a function that 
is transparent to the users. The origination and integrity proof is created when 
a user from the platform 100C performs the signing function via the protected 
authentication signature generator 230 that is unique to the platform 100C. 
This signing function produces the digital signature 105. 

10 Referring back to Figure 1A, the authentication signature verifier 104 

completes the authentication cycle by verifying that data is unaltered compared 
to the data from which the digital signature is computed and that the digital 
signature 105 is generated by the correct platform 100C. The authentication 
signature verifier 104 takes as input the data 102, the digital signature 105, and 

15 the public key 103. The authentication signature verifier 104 generates as 

output an information bit signifying whether or not the data matches the original 
data and the digital signature is generated using the corresponding private key. 

In one embodiment, the digital signature 105 and the data 102 are 
collected into a single "signed data" message. The data 102 and the digital 

20 signature 105 may have any type of format and may or may not be collected 
into a single message. 

Figure 3 is a diagram illustrating the protected authentication signature 
generator 230 shown in Figure 2 according to one embodiment of the invention. 
The protected authentication signature generator 230 includes a platform- 

25 specific transformer 31 0, a decryptor 320, and a signer 330. 
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The platform-specific transformer 310 performs a platform-specific 
transformation of the authentication identifier 225 to output an encrypted 
platform private key 315. The transformation uses the unique platform identifier 
215 to make the transformation unique to the platform. The platform-specific 
5 transformation is reversible in the sense that the opposite transformation from 
the encrypted platform private key 315 to the authentication identifier 225 can 
be readily done given the same unique platform identifier 215. Any of a variety 
of different embodiments of the platform-specific transformer 310 can be used 
as long as they have the required properties of being reversible and being 

10 specific to the unique platform identifier 215. 

For example, the platform-specific transformer 310 may be an Exclusive 
OR (XOR) device that performs a bit-wise XOR of two input streams of bits to 
produce an output stream of bits. One of the input bit streams is the 
authentication identifier 225. The other input bit stream is a unique, serially 

15 uncorrelated bit stream generated in a reproducible way from the unique 
platform identifier 215. In one embodiment of the serially uncorrelated bit 
stream, a cryptographic hash of the unique platform identifier 215 is computed 
to generate the first run of bits. As long as more bits are needed, the previous 
run of bits is hashed to produce the next run of bits. 

20 In another embodiment of the platform-specific transformer 310, the 

unique platform identifier 215 is used as a seed to generate a symmetric 
encryption/decryption key, and the transformation is a decryption using this 
symmetric key. Techniques for generation of symmetric keys and symmetric 
key decryption from the unique platform identifier 215 are well known in the art. 
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The platform-specific transformer 310 further includes a reporting device 
340 to report the unique platform identifier 215 that is used in the 
transformation. The reporting device 340 generates an additional output from 
the protected authentication signature generator 230. The additional output is 
5 referred to as the "tracked platform identifier" 216, which may be simply a copy 
of the unique platform identifier 215. For example, this may be used to detect 
attacks based on forging or altering the platform's unique platform identifier 
215. If the same tracked platform identifier 216 is detected from several 
different platforms, a forgery may be detected. 

10 The decryptor 320 decrypts the encrypted platform private key 31 5 to 

generate a "clear" copy of the platform private key 335. The decryption is an 
asymmetric decryption performed using an authentication identifier generator's 
public key 325 embedded in the protected authentication signature generator 
230. The authentication identifier generator's pubic key 325 is provided to the 

15 platform 100C by the vendor of the authentication identifier 225 (e.g., 

authentication vendor). The authentication identifier generator's public key 325 
is a "public" key of the asymmetric encryption public/private key pair used by 
the authentication vendor. 

The inclusion of the decryptor 320 in the protected authentication 

20 signature generator 230 provides protection against attacks based on reverse- 
engineering the protected authentication signature generator 230. Without the 
decryptor 320, a skilled attacker could use the reverse of the transformation by 
the platform-specific transformer 310 transformation to compute and then install 
the authentication identifier 225 that would be suitably transformed into a 

25 desired platform private key 335. With the decryptor 320 present, the attacker 
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would have to break the encryption algorithm or the private key corresponding 
to the authentication identifier generator's public key 325. Since the security of 
an algorithm rests in the key, it is important that the authentication identifier 
generator's public key 325 and its corresponding private key be generated 
5 using a strong cryptographic process. 

The protected authentication signature generator 230 may be exposed 
to reverse-engineering. In this case, security of the invention depends on how 
resistant the protected authentication signature generator 230 and the unique 
platform identifier 215 are to duplication and modification. In other cases, the 

10 protected authentication signature generator 230 is protected against reverse- 
engineering. In these cases the authentication identifier generator's public key 
325 and the platform private key 335 are secret. This provides protection 
against an attacker being able to build an alternate device or software module 
that can produce equivalent signatures. 

15 The signer 330 generates a digital signature 105 of the data 102 using 

the platform private key 335. The platform private key 335 is the "private" 
member of an asymmetric public/private key pair to be used for generation and 
verification of digital signatures using any of a variety of algorithms. Example 
algorithms include EIGama, Schnorr and Digital Signature Algorithms schemes 

20 just to name a few. However, it is not required that these keys also be usable 
for bulk data encryption and decryption. 

The unique platform identifier 215 is a permanent identifier, and may be 
generated and stored at the time of manufacturing or the initial system boot of 
the platform 100C. For example, the unique platform identifier 215 may be 

25 programmed into fuses of a system ROM. The authentication identifier 225 is 
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provided by the authentication vendor and may be stored at the time of 
manufacturing or an initial first system boot. However, the present invention 
allows the authentication identifier 225 to be stored later in the lifetime of the 
system, and possibly altered if desired. In general, this means that the 

5 authentication identifier 225 will be stored in a place where someone could 
read it and copy it to another platform. However, the copied authentication 
identifier 225 will not be usable on another platform other than the platform 
100C. The platform-specific transformer 310 on the another platform 
transforms the copied authentication identifier 225 to a different encrypted 

10 platform private key 31 5, the decryptor 320 decrypts it to an invalid platform 
private key 335, and the signer 330 will either generate an incorrect digital 
signature 105 or refuse to perform the operation at all depending on its design. 

Figure 4 is a diagram illustrating the authentication identifier generator 
130 shown in Figure 1A according to one embodiment of the invention. The 

15 authentication identifier generator 130 includes an encryptor 410 and a 
platform-specific reverse transformer 420. 

The platform private key 335 and the corresponding platform public key 
103 may be generated by the user (e.g., purchaser) and the platform private 
key 335 is then supplied to the authentication vendor. The platform private key 

20 335 and the corresponding platform public key 103 may also be generated by 
the authentication vendor and the platform public key 103 is then supplied to 
the user. 

The encryptor 410 encrypts the platform private key 335 to generate an 
encrypted platform private key 315 using an authentication identifier generator's 
25 private key 41 5 owned by the authentication vendor. The encryptor 410 
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performs the reverse of the decryption performed by the decryptor 320 shown 
in Figure 3. When the protected authentication signature generator is exposed 
to reverse-engineering, the encryptor 410 and decryptor 320 use asymmetrical 
encryption and decryption. Symmetrical encryption and decryption may be 
used if there is no risk that either the encryptor 41 0 or decryptor 320 may be 
reverse-engineered. 

The platform-specific reverse transformer 420 transforms the encrypted 
private key 315 to generate the authentication identifier 225. The platform- 
specific reverse transformer 420 uses the unique platform identifier 215 to 
make its transformation platform-specific. The platform-specific reverse 
transformer 420 performs the exact reverse of the transformation performed by 
the platform-specific transformer 310 shown in Figure 3. 

Any of a variety of embodiments of the platform-specific reverse 
transformer 420 can be used as long as the embodiment used is the reverse of 
the platform-specific transformer 310. If the XOR embodiment of the platform- 
specific transformer 310 is used, the identical algorithm can be used for the 
platform-specific reverse transformer 420. The platform-specific transformer 
310 that uses symmetric-key decryption may need to use an encryption 
variation of the algorithm for the platform-specific reverse transformer 420. 

Figure 5 is the flowchart illustrating a process 500 to generate a signed 
data according to one embodiment of the invention. 

Upon START, the process 500 retrieves the unique platform identifier 
from the first storage (Block 510). Then the process 500 retrieves the 
authentication identifier from the second storage (Block 520). Next, the 
process 500 receives data that needs to be signed by the platform (Block 530). 
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The process 500 generates a digital signature using the unique platform 
identifier and the authentication identifier (Block 540). The signed data is a 
digital code that is the output result of the process 500. Then the process 500 
is terminated. 

5 Figure 6 is a flowchart illustrating the process generating the digital 

signature of process 500 according to one embodiment of the invention. 

Upon START, the process 540 transforms the authentication identifier 
and the platform identifier to generate an encrypted platform private key (Block 
610). The transformation is a reversible transformation that uses the unique 

10 platform identifier to make the transformation platform-specific. Next, the 
process 540 decrypts the encrypted platform private key using the using an 
authentication identifier generator's public key, producing a platform private key 
(Block 620). Then, the process 540 generates a digital signature for the data 
using the platform private key (Block 630) according to digital signature 

15 generation algorithms. Then the process 540 is terminated. 

Figure 7 is a flowchart illustrating a process 700 to generate an 
authentication identifier according to one embodiment of the invention. 

Upon START, the process 700 obtains a platform private key (Block 
710). Then, the process 700 obtains an authentication identifier generator's 

20 private key (Block 720). Next, the process 700 encrypts the platform private to 
generate an encrypted platform private key using the authentication identifier 
generator's private key (Block 730). The process 700 obtains a unique platform 
identifier from the platform (Block 740). Then the process 700 transforms the 
encrypted platform private key to generate an authentication identifier (Block 

25 750). The transformation is made platform-specific by the use of the unique 
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platform identifier, and is the reverse of the transformation of Block 610. Then 
the process 700 is terminated. 

While this invention has been described with reference to illustrative 
5 embodiment, this description is not intended to be construed in a limiting sense. 
Various modifications of the illustrative embodiments, as well as other 
embodiments of the invention, which are apparent to persons skilled in the art 
to which the invention pertains are deemed to lie within the spirit and scope of 
the invention. 
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What is claimed is: 



CLAIMS 



1 . An apparatus comprising: 

a first storage to store a platform identifier unique to a platform; 

a second storage to store an authentication identifier, the authentication 
identifier being provided by an authentication vendor using the platform 
identifier, a platform private key, and an authentication private key; and 

a signature generator to generate a digital signature for data using the 
platform identifier and the authentication identifier. 

2. The apparatus of claim 1 wherein the signature generator comprises: 

a platform-specific transformer to transform the authentication identifier 
using the platform identifier to output an encrypted platform private key; and 

a decryptor coupled to the platform-specific transformer to decrypt the 
encrypted platform private key to generate the platform private key using an 
authentication public key, the authentication public key being provided by the 
authentication vendor. 

3. The apparatus of claim 2 wherein the signature generator further 
comprises: 
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3 a signer coupled to the decryptor to sign the data using the platform 

4 private key, the platform private key being transparent to the platform. 

1 4. The apparatus of claim 2 wherein the platform-specific transformer 

2 comprises: 

3 an Exclusive OR (XOR) device to perform an XOR function on the 

4 platform identifier and the authentication identifier. 

1 5. The apparatus of claim 2 wherein the platform-specific transformer 

2 comprises: 

3 a decryptor to decrypt the authentication identifier using a symmetric 

4 encryption/decryption key generated from the platform identifier. 

1 6. The apparatus of claim 2 wherein the authentication identifier is 

2 generated by a platform-specific reverse transformer which transforms the 

3 encrypted platform private key using the platform identifier, the encrypted 

4 platform private key being encrypted from the platform private key using the 

5 authentication private key. 

1 7. The apparatus of claim 6 wherein the platform-specific reverse 

2 transformer comprises an Exclusive OR (XOR) device to perform an XOR 

3 function on the encrypted platform private key using the platform identifier. 
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1 8. The apparatus of claim 4 wherein the platform identifier is a unique, 

2 serially uncorrected bit stream. 

1 9. The apparatus of claim 6 wherein the platform-specific reverse 

2 transformer comprises an encryptor to encrypt the encrypted platform private 

3 key using a symmetric encryption/decryption key generated from the platform 

4 identifier. 

1 10. The apparatus of claim 1 wherein the platform identifier is installed in the 

2 first storage in a protected environment. 

1 11. The apparatus of claim 10 wherein the protected environment is a 

2 system management basic input/output system table. 

1 12. The apparatus of claim 4 wherein the platform-specific transformer 

2 further comprises: 

3 a reporting device to report the platform identifier to generate a tracked 

4 platform identifier. 

1 13. The apparatus of claim 1 wherein the platform identifier is a processor 

2 serial number retrieved from a processor. 

1 14. An apparatus comprising: 
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2 an encryptor to encrypt a platform private key using an authentication 

3 private key to generate an encrypted platform private key, the platform private 

4 key being provided by a platform; and 

5 a platform-specific reverse transformer to transform the encrypted 

6 platform private key to generate an authentication identifier using a platform 

7 identifier unique to the platform, the authentication identifier being provided to 

8 the platform to generate a digital signature. 

1 1 5. The apparatus of claim 14 wherein the platform-specific reverse 

2 transformer comprises: 

3 an Exclusive OR (XOR) device to perform an XOR function on the 

4 encrypted platform private key and the platform identifier to generate the 

5 authentication identifier. 

1 16. The apparatus of claim 15 wherein the platform identifier is a unique, 

2 serially uncorrelated bit stream. 

1 1 7. The apparatus of claim 14 wherein the platform-specific reverse 

2 transformer comprises an encryptor to encrypt the encrypted platform private 

3 key using a symmetric encryption/decryption key generated by the platform 

4 identifier. 

1 18. A method comprising: 
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2 storing a platform identifier unique to a platform and an authentication 

3 identifier in first and second storages, respectively, the authentication identifier 

4 being provided by an authentication vendor using the platform identifier, a 

5 platform private key, and an authentication private key; and 

6 generating a digital signature for data using the platform identifier and 

7 the authentication identifier. 

1 19. The method of claim 18 wherein generating digital signature comprises: 

2 transforming the authentication identifier using the platform identifier to 

3 output an encrypted platform private key; and 

4 decrypting the encrypted platform private key to generate the platform 

5 private key using an authentication public key provided by the authentication 

6 vendor. 



1 20. The method of claim 19 wherein generating the digital signature further 

2 comprises: 

3 signing the data using the platform private key, the platform private key 

4 being transparent to the platform. 

1 21 . The method of claim 19 wherein transforming the authentication 

2 identifier comprises: 



23 



042390.P6758 

3 performing an Exclusive OR (XOR) function on the platform identifier 

4 and the authentication identifier. 

1 22. The method of claim 1 9 wherein transforming the authentication 

2 identifier comprises: 

3 decrypting the authentication identifier using a symmetric 

4 encryption/decryption key generated from the platform identifier. 

1 23. The method of claim 19 wherein the authentication identifier is 

2 generated by transforming the encrypted private key using the platform 

3 identifier, the encrypted private key being encrypted from the platform private 

4 key using an authentication private key. 

1 24. The method of claim 23 wherein transforming the encrypted private key 

2 using the platform identifier comprises performing an XOR function on the 

3 encrypted platform private key and the platform identifier. 

1 25. The method of claim 21 wherein the platform identifier is a unique, 

2 serially uncorrelated bit stream. 

1 26. The method of claim 23 wherein transforming the encrypted private key 

2 comprises encrypting the encrypted private key using a symmetric 

3 encryption/decryption key generated from the platform identifier. 
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1 27. The method of claim 18 wherein storing the platform identifier comprises 

2 installing the platform identifier in a protected environment. 

1 28. The method of claim 27 wherein the protected environment is a system 

2 management basic input/output system table. 

1 29. The method of claim 21 wherein transforming the authentication 

2 identifier further comprises: 

3 reporting the platform identifier to report a tracked platform identifier. 

1 30. The method of claim 18 wherein the platform identifier is a processor 

2 serial number retrieved from a processor. 

1 31 . A method comprising: 

2 encrypting a platform private key using an authentication private key to 

3 generate an encrypted platform private key, the platform private key being 

4 provided by a platform; and 

5 transforming the encrypted platform private key to generate an 

6 authentication identifier using a platform identifier unique to the platform. 

1 32. The method claim 31 wherein transforming the encrypted platform 

2 private key comprises: 
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3 performing an Exclusive OR (XOR) function on the encrypted platform 

4 private key and the platform identifier to generate the authentication identifier. 

1 33. The method of claim 32 wherein the platform identifier is a unique, 

2 serially uncorrelated bit stream. 

1 34. The method of claim 31 wherein transforming the encrypted platform 

2 private key comprises encrypting the encrypted platform private key using a 

3 symmetric encryption/decryption key generated by the platform identifier. 

1 35. A computer program product comprising: 

2 a machine readable medium having computer program code therein, the 

3 computer program product comprising: 

4 computer readable program code for storing a platform identifier unique 

5 to a platform and an authentication identifier in first and second storages, 

6 respectively, the authentication identifier being provided by an authentication 

7 vendor using the platform identifier, a platform private key, and an 

8 authentication private key; and 

9 computer readable program code for generating a digital signature for 
10 data using the platform identifier and the authentication identifier. 

1 36. The computer program product of claim 35 wherein the computer 

2 readable program code for generating digital signature comprises: 
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3 computer readable program code for transforming the authentication 

4 identifier using the platform identifier to output an encrypted platform private 

5 key; and 



6 computer readable program code for decrypting the encrypted platform 

7 private key to generate the platform private key using an authentication public 

8 key provided by the authentication vendor. 



1 37. The computer program product of claim 36 wherein the computer 

2 readable program code for generating the digital signature further comprises: 



3 computer readable program code for signing the data using the platform 

4 private key, the platform private key being transparent to the platform. 

1 38. The computer program product of claim 36 wherein a computer readable 

2 program code for transforming the authentication identifier comprises: 



3 computer readable program code for performing an Exclusive OR (XOR) 

4 function on the platform identifier and the authentication identifier. 



1 39. The computer program product of claim 36 wherein a computer readable 

2 program code for transforming the authentication identifier comprises: 



3 computer readable program code for decrypting the authentication 

4 identifier using a symmetric encryption/decryption key generated from the 

5 platform identifier. 

27 



042390P6758 

1 40, The computer program product of claim 36 wherein the authentication 

2 identifier is generated by a computer readable program code for transforming 

3 the encrypted private key using the platform identifier, the encrypted private key 

4 being encrypted from the platform private key using an authentication private 

5 key. 

1 41 . The computer program product of claim 40 wherein a computer readable 

2 program code for transforming the encrypted private key and the platform 

3 identifier comprises performing an XOR function on the encrypted platform 

4 private key and the platform identifier. 

1 42. The computer program product of claim 38 wherein the platform 

2 identifier is a unique, serially uncorrelated bit stream. 

1 43. The computer program product of claim 40 wherein a computer readable 

2 program code for transforming the encrypted private key comprises a computer 

3 readable program code for encrypting the encrypted private key using a 

4 symmetric encryption/decryption key generated from the platform identifier. 

1 44. The computer program product of claim 35 wherein the computer 

2 readable program code for storing the platform identifier comprises computer 

3 readable program code for installing the platform identifier in a protected 

4 environment. 
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1 45. The computer program product of claim 44 wherein the protected 

2 environment is a system management basic input/output system table. 

1 46. The computer program product of claim 38 wherein a computer readable 

2 program code for transforming the authentication identifier further comprises: 

3 computer readable program code for reporting the platform identifier to 

4 generate a tracked platform identifier. 

1 47. The computer program product of claim 35 wherein the platform 

2 identifier is a processor serial number retrieved from a processor. 

1 48. A computer program product comprising: 

2 a machine readable medium having computer program code therein, the 

3 computer program product comprising: 

4 computer readable program code for encrypting a platform private key 

5 using an authentication private key to generate an encrypted platform private 

6 key, the platform private key being provided by a platform; and 

7 computer readable program code for transforming the encrypted 

8 platform private key to generate an authentication identifier using a platform 

9 identifier unique to the platform. 
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1 49. The computer program product claim of 48 wherein a computer readable 

2 program code for transforming the encrypted platform private key comprises: 

3 computer readable program code for performing an Exclusive OR (XOR) 

4 function on the encrypted platform private key and the platform identifier to 

5 generate the authentication identifier. 

1 50. The computer program product of claim 49 wherein the platform 

2 identifier is a unique, serially uncorrelated bit stream. 

1 51 . The computer program product of claim 48 wherein the computer 

2 readable program code for transforming the encrypted platform private key 

3 comprises computer readable program code for encrypting the encrypted 

4 platform private key using a symmetric encryption/decryption key generated by 

5 the platform identifier. 

1 52. A system comprising: 

2 a platform having a unique platform identifier (ID); and 

3 a digital signature system coupled to the platform to authenticate data, 

4 the digital signature system comprising: 

5 a first storage to store the platform identifier; 
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6 a second storage to store an authentication identifier, the authentication 

7 identifier being provided by an authentication vendor using the platform 

8 identifier, a platform private key, and an authentication private key; and 

9 a signature generator to generate a digital signature for data using the 
10 platform identifier and the authentication identifier. 

1 53. The system of claim 52 wherein the signature generator comprises: 

2 a platform-specific transformer to transform the authentication identifier 

3 using the platform identifier to output an encrypted platform private key; and 

4 a decryptor coupled to the platform-specific transformer to decrypt the 

5 encrypted platform private key to generate the platform private key using an 

6 authentication public key, the authentication public key being provided by the 

7 authentication vendor. 



1 54. The system of claim 53 wherein the signature generator further 

2 comprises: 

3 a signer coupled to the decryptor to sign the data using the platform 

4 private key, the platform private key being transparent to the platform. 

1 55- The system of claim 53 wherein the platform-specific transformer 

2 comprises: 
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3 an Exclusive OR (XOR) device to perform an XOR function on the 

4 platform identifier and the authentication identifier. 

1 56. The system of claim 53 wherein the platform-specific transformer 

2 comprises: 

3 a decryptor to decrypt the authentication identifier using a symmetric 

4 encryption/decryption key generated from the platform identifier. 

1 57. The system of claim 53 wherein the authentication identifier is generated 

2 by a platform-specific reverse transformer which transforms the encrypted 

3 platform private key and the platform identifier, the encrypted platform private 

4 key being encrypted from the platform private key using the authentication 

5 private key. 

1 58. The system of claim 57 wherein the platform-specific reverse 

2 transformer comprises an Exclusive OR (XOR) device to perform an XOR 

3 function on the encrypted platform private key and the platform identifier. 

1 59. The system of claim 55 wherein the platform identifier is a unique, 

2 serially uncorrelated bit stream. 

1 60. The system of claim 57 wherein the platform-specific reverse 

2 transformer comprises an encryptor to encrypt the encrypted platform private 

3 key using a symmetric encryption/decryption key generated from the platform 

4 identifier. 
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1 61 . The system of claim 52 wherein the platform identifier is installed in the 

2 first storage in a protected environment. 

1 62. The system of claim 61 wherein the protected environment is a system 

2 management basic input/output system table. 

1 63. The system of claim 55 wherein the platform-specific transformer further 

2 comprises: 

3 a reporting device to report the platform identifier to generate a tracked 

4 platform identifier. 

1 64. The system of claim 52 wherein the platform identifier is a processor 

2 serial number retrieved from a processor. 

1 65. A system comprising: 

2 a digital signature system; 

3 an authentication identifier generator coupled to the digital signature 

4 system, the authentication identifier generator comprising: 

5 an encryptorto encrypt a platform private key using an authentication 

6 private key to generate an encrypted platform private key, the platform private 

7 key being provided by a platform; and 
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8 a platform-specific reverse transformer to transform the encrypted 

9 platform private key to generate an authentication identifier using a platform 

10 identifier unique to the platform, the authentication identifier being provided to 

11 the platform to generate a digital signature. 

1 66. The system of claim 65 wherein the platform-specific reverse 

2 transformer comprises: 

3 an Exclusive OR (XOR) device to perform an XOR function on the 

4 encrypted platform private key and the platform identifier to generate the 

5 authentication identifier. 

1 67. The system of claim 66 wherein the platform identifier is a unique, 

2 serially uncorrelated bit stream. 

1 68. The of system claim 65 wherein the transform-specific reverse 

2 transformer comprises an encryptor to encrypt the encrypted platform private 

3 key using a symmetric encryption/decryption key generated by the platform 

4 identifier. 

5 a first storage to store a platform identifier unique to a platform; 

6 a second storage to store an authentication identifier, the authentication 

7 identifier being provided by an authentication vendor using the platform 

8 identifier, a platform private key, and an authentication private key; and 



34 



a 

m 
a 

a 

y 
o 
o 



042390.P6758 

9 a signature generator to generate a digital signature for data using the 

10 platform identifier and the authentication identifier. 
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ABSTRACT 

A first storage to store a platform identifier (ID). The platform ID is unique to a 
platform. A second storage to store an authentication identifier. The 
authentication identifier is provided by an authentication vendor. The 
authentication vendor uses the platform ID, a platform private key, and an 
authentication private key. A signature generator uses the platform ID and the 
authentication identifier to generate a digital signature. 
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No. 41,105; Charles A. Mario. Reg. No. 41,199; Leo V. Novakoakj, Reg. No 37,198; Naomi Obmaa, Reg, No. 39J20; 
Tnomia C. Reynold*, Reg. No. 32,488; Kenneth M Seddon, Reg. No. 43,105; Mark Seeley, Reg. Nc. 32,299; Steven P. 
Skebrat, Reg, No. 36,279; Howard A. Skniat, Reg. No. 36,008; Steven C. Stewart, Reg. No. 33.555; Raymond J. Werner, 
Reg. No. 34,752; Robert G. Winkle, Reg. No. 37,474; and Chariei K. Young, Reg. No. 39,433; my patent attorney!, and 
Thomai Raleigh Lane, Reg. No. 42,781; Cah-ra E, Welli; Reg, No. P43.256, Peter Lam. Reg. No, 44,855; and Gene 1, Su, 
Reg. No. 45,140; my patent agent!, of WTBL CORPORATION; and James R. Thein, Reg. No. 31 a 710, my pastor 
aflomey; with full power of aubstiairioa and revocation, to proaecute this applieatson and to tranuct all buaisesc in the 
Patent and Trademark Office connected herewith. 
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